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Dj.Sital.rights.manageme 
Qiong Liu, Reihaneh Safavi-Naini, Nicholas Paul Sheppard 

January 2003 Proceedings of the Australasian information security workshop conference o 
ACSW frontiers 2003 - Volume 21 ACSW Frontiers "03 

Publisher: Australian Computer Society, Inc. 

Full text available: ^pd£22463.KB] Additional Information: MLcltatlon, abstract., references, citings, index tejms 

Transferring the traditional business model for selling digital goods linked to physical media to t 
online world leads to the need for a system to protect digital intellectual property. Digital Rights 
Management(DRM) is a system to protect high-value digital assets and control the distribution 
and usage of those digital assets. This paper presents a review of the current state of DRM, 
focusing on security technologies, underlying legal implications and main obstacles to DRM 
deployment with the ... 



Keywords: DRM, digital content 



2 Architectures: DRM interpperab^ of a layered framework 




; : Gregory L. Heileman, Pramod A. Jamkhedkar 
November 2005 Proceedings of the 5th ACM workshop on Digital rights management DRM 



05 

Publisher: ACM Press 

Full text available: pdf(295.51 KB) Additional Information: full citation, abstract, references, index terms 

Interoperability is currently seen as one of the most significant problems facing the digital right! 
management (DRM) industry. In this paper we consider the problem of interoperability among 
DRM systems from the perspective of a layered architectural framework. The advantage of 
looking at the problem from this point of view is that the layered framework provides a certain 
amount of structure that is very helpful in guiding those working on DRM interoperability issues 
Specifically, the layered ... 



Keywords: DRM, interoperability, layered architecture 



3 Software issues: Towards a software architecture for DRM 
Sam Michiels, Kristof Verslype, Wouter Joosen, Bart De Decker 
^ November 2005 Proceedings of the 5th ACM workshop on Digital rights management DRM 
05 
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Publisher: ACM Press 

Full text available: *gj pciff296.34 KB) Additional Information: fuss citation, abstract, references, index terms 

The domain of digital rights management (DRM) is currently lacking a generic architecture that 
supports interoperability and reuse of specific DRM technologies. This lack of architectural supp< 
is a serious drawback in light of the rapid evolution of a complex domain like DRM. It is highly 
unlikely that a single DRM technology or standard will be able to support the diversity of device! 
users, platforms, and media, or the wide variety of system requirements concerning security, 
flexibility, a ... 

Keywords: DRM, software architecture 



4 A secure infrastructure for service discovery and access in pervasive computing 
Jeffrey Undercoffer, Filip Perich, Andrej Cedilnik, Lalana Kagal, Anupam Joshi 
April 2003 Mobile Networks and Applications, volume 8 issue 2 
Publisher: Kluwer Academic Publishers 

Full text available: *|| ] pdf(3QS.34 KB) Additional Information: Hill citation, abstract references, citings , index terms 

Security is paramount to the success of pervasive computing environments. The system 
presented in this paper provides a communications and security infrastructure that goes far in 
advancing the goal of anywhere-anytime computing. Our work securely enables clients to acces 
and utilize services in heterogeneous networks. We provide a service registration and discovery 
mechanism implemented through a hierarchy of service management. The system is built upon 
simplified Public Key Infrastructure t ... 

Keywords: distributed services, extensible markup language, pervasive computing, security, 
smartcards 



5 EsstdMe^^ 

Thomas Kunz, Michiel F. H. Seuren 

November 1997 Proceedings of the 1997 conference of the Centre for Advanced Studies on 

Collaborative research 
Publisher: IBM Press 

Full text available: ^pd£4 1 2i.MB} Additional Information: M.cjMlon, abstract, references, index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based on 
process-time diagrams are often used to obtain a better understanding of the execution of the 
application. The visualization tool we use is Poet, an event tracer developed at the University of 
Waterloo. However, these diagrams are often very complex and do not provide the user with th 
desired overview of the application. In our experience, such tools display repeated occurrences 
non-trivial commun ... 

6 Security in mobile communications: chailenges and opportunities 
Audun Josang, Gunnar Sanderud 

January 2003 Proceedings of the Australasian information security workshop conference o 
ACSW frontiers 2003 - Volume 21 ACSW Frontiers '03 

Publisher: Australian Computer Society, Inc. 

Full text available: ^pdf( 1.17 ; .04„KBj Additional Information: jyj!.crtatjp.O, abstract, references, citings, index terms 

The nature of mobile communication, characterised for example by terminals having poor user 
interface and limited processing capacity, as well as complex combination of network protocols, 
makes the design of security solutions particularly challenging. This paper discusses some of th< 
difficulties system architects are faced with as well as some advantages mobile networks offer 
when designing security solutions for mobile communication. 
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Keywords: heterogeneous networks, mobile devices, security, usability 



7 Security in embedded systems: Design challenges 

Srivaths Ravi, Anand Raghunathan, Paul Kocher, Sunil Hattangady 
W-\ August 2004 ACM Transactions on Embedded Computing Systems (TECS), Volume 3 issue 3 

Publisher: ACM Press 

Full text available: "gj pdft3.67 MB) Additional Information: full citation, abstract, references, index terms, review 

Many modern electronic systems— including personal computers, PDAs, cell phones, network 
routers, smart cards, and networked sensors to name a few— need to access, store, manipulate 
or communicate sensitive information, making security a serious concern in their design. 
Embedded systems, which account for a wide range of products from the electronics, 
semiconductor, telecommunications, and networking industries, face some of the most 
demanding security concerns— on the one hand, they are oft ... 

Keywords: Embedded systems, architecture, authentication, battery life, cryptographic 
algorithms, decryption, encryption, hardware design, processing requirements, security, securit 
attacks, security protocols, tamper resistance 



8 Report^ 
C. D. Mote 

May 2002 Proceedings of the 2002 annual national conference on Digital government 
research dg.o '02 

Publisher: Digital Government Research Center 

Full text available: 1|| pdf(S39. 99 KB ) Additional Information: MLsMiQD. 



9 Report of the national workshop on jnternet votjng: issues and research agenda 

C. D. Mote 

May 2000 Proceedings of the 2000 annual national conference on Digital government 
research dg.o '00 

Publisher: Digital Government Research Center 

Full text available: ^p_df(539 ,99„KB] Additional Information: fujl^cjtatipn, abstract. 

As use of the Internet in commerce, education and personal communication has become comm< 
the question of Internet voting in local and national elections naturally arises. In addition to 
adding convenience and precision, some believe that Internet voting may reverse the historical 
and downward trend of voter turnout in the United States. For these reasons President Clinton 
issued a memorandum in December 1999 requesting that the National Science Foundation 
examine the feasibility of online (In ... 

10 EPMerJicgnMa 

Koichi Takagi, Shigeyuki Sakazawa 
^ November 2005 Proceedings of the 13th annual ACM international conference on Multimedi 
MULTIMEDIA '05 
Publisher: ACM Press 

Full text available: ^|pdf(1 17,39 ;_KB) Additional Information: full citation, abstract, references, index terms 

This paper proposes an MP3 watermarking method that is applicable to a mobile terminal with 
limited computational resources. Considering that the embedded information is copyright 
information and metadata, which should be extracted before playing back, the watermark 
detection process should be executed quickly. However, conventional methods cannot detect a 
digital watermark at high speed. Thus, this paper proposes that scalefactor values in MP3 data I 
altered so as not to spoil audio quality. E ... 
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11 The battle against phishing: Dynamic Security Skins 
J& Rachna Dhamija, J. D. Tygar 

^ July 2005 Proceedings of the 2005 symposium on Usable privacy and security SOUPS '05 
Publisher: ACM Press 

Full text available: l j|] pdf(398.1Q KB) Additional Information: full citation, abstract , references 

Phishing is a model problem for illustrating usability concerns of privacy and security because 
both system designers and attackers battle using user interfaces to guide (or misguide) users. \A 
propose a new scheme, Dynamic Security Skins, that allows a remote web server to prove its 
identity in a way that is easy for a human user to verify and hard for an attacker to spoof. We 
describe the design of an extension to the Mozilla Firefox browser that implements this 
scheme. We present two novel inte ... 

12 Scaiabie public-key tracing and revoking 
Yevgeniy Dodis, Nelly Fazio, Aggelos Kiayias, Moti Yung 

^ July 2003 Proceedings of the twenty-second annual symposium on Principles of distribut 
computing 
Publisher: ACM Press 

Full text available: ^pdf(1.17MB) Additional Information: full citation, abstract, references, citings, index terms 

Traitor Tracing Schemes constitute a very useful tool against piracy in the context of digital 
content broadcast. In such multi-recipient encryption schemes, each decryption key is 
fingerprinted and when a pirate decoder is discovered, the authorities can trace the identities of 
the users that contributed in its construction (called traitors). Public-key traitor tracing schemes 
allow for a multitude of non trusted content providers using the same set of keys, which makes 
the scheme "server-side ... 

Keywords: Broadcast Encryption, Digital Content Distribution, Multicast, Scalability, Traitor 
Tracing 



1 3 VWreless . LAN security, ao^ 
Yasir Zahur, T. Andrew Yang 

January 2004 Journal of Computing Sciences in Colleges, volume 19 issue 3 
Publisher: Consortium for Computing Sciences in Colleges 

Full text available: ^pdJ(J8.1 ; 24.KBJ Additional Information: fj!!.citatjon l abstract, references, index tejoms 

For the past couple of years, increasing number of wireless local area networks (WLANs), based 
on the IEEE 802.11 protocols, have been deployed in various types of locations, including home 
schools, airports, business offices, government buildings, military facilities, coffee shops, book 
stores, as well as many other venues. One of the primary advantages offered by WLAN is its 
ability to provide untethered connectivity to portable devices, such as wireless laptops and PDA; 
In some remote comm ... 



14 Use of nested certificates for efficient, dynamic, and trust preserving public key infrastructu 

Albert Levi, M. Ufuk Caglayan, Cetin K. Koc 
Wv February 2004 ACM Transactions on Information and System Security (TISSEC), volume 7 issu 

Publisher: ACM Press 

Full text available: l g| pdf{ 532.64 KB) Additional Information: full citation, abstract, references, index terms, review 

Certification is a common mechanism for authentic public key distribution. In order to obtain a 
public key, verifiers need to extract a certificate path from a network of certificates, which is 
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called public key infrastructure (PKI), and verify the certificates on this path recursively. This is 
classical methodology. Nested certification is a novel methodology for efficient certificate path 
verification. Basic idea is to issue special certificates (called nested certificates) for other 
certifica ... 

Keywords: Digital certificates, key management, nested certificates, public key infrastructure 

15 Session 2: secure Web services: Designing a distributed access control processor for 
network services on the Web 

^ Reiner Kraft 

November 2002 Proceedings of the 2002 ACM workshop on XML security 
Publisher: ACM Press 

Full text available: * Q pdf(301.14 KB) Additional Information: full citation, abstrsact, references, index terms 

The service oriented architecture (SOA) is gaining more momentum with the advent of network 
services on the Web. A programmable and machine accessible Web is the vision of many,and 
might represent a step towards the semantic Web. However, security is a crucial requirement fc 
the serious usage and adoption of the Web services technology. This paper enumerates design 
goals for an access control model for Web services. It then introduces an abstract general mode 
for Web services components, along ... 

Keywords: Web services, XML, access control, security 

16 Special issue: Al in engineering 
j& D. Sriram, R. Joobbani 

April 1985 ACM SIGART Bulletin, issue 92 
Publisher: ACM Press 

Full text available: 'gj pdfi'879 MB) Additional Information: full citation, abstract 

The papers in this special issue were compiled from responses to the announcement in the July 
1984 issue of the SIGART newsletter and notices posted over the ARPAnet. The interest being 
shown in this area is reflected in the sixty papers received from over six countries. About half t\ 
papers were received over the computer network. 

1 7 Ana !y ;s i s of m ob|[e . com m erce . m arket 

jjjgfc Chi Hong LEUNG, Yuen Yan CHAN, Candy Suk Ching CHAN 

^ September 2003 Proceedings of the 5th international conference on Electronic commerce 
ICEC '03 

Publisher: ACM Press 

Full text available: ||).pdf(93 .24.KB) Additional Information: yLcjtatjon, abstract., references, Indexjerms 

Hong Kong is one of the cities with the highest penetration rate of mobile devices in the world. 
There is the potential for Hong Kong to be a leader of mobile commerce. Recently, the six local 
mobile network operators stimulated usage of SMS to promote mobile Internet markets. In 
addition, the Hongkong Post launched the mobile digital certificates for community-wide adoptic 
of mobile commerce. However, the customers are not buying what might be expected, and mot 
commerce is a relatively new ... 

Keywords: communication standard, information market, marketing analysis, mobile commerc 
mobile e-cert, mobile network operator 

18 Special session on security on SoC: Securing wireless data: system architecture challenge 
Srivaths Ravi, Anand Raghunathan, Nachiketh Potlapally 
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October 2002 Proceedings of the 15th international symposium on System Synthesis 
Publisher: ACM Press 

Full text available: ^.pdf(1.72.35. KB}. Additional Information: MLcjtatjon, abstract, references, dtin&s, index terms 

Security is critical to a wide range of current and future wireless data applications and services. 
This paper highlights the challenges posed by the need for security during system architecture 
design for wireless handsets, and provides an overview of emerging techniques to address then 
We focus on the computational requirements for securing wireless data transactions, revealing i 
gap between these requirements and the trends in processing capabilities of embedded 
processors used in wireless h ... 

Keywords: 3DES, AES, DES, IPSec, RSA, SSL, WTLS, decryption, design methodology, 
embedded system, encryption, handset, mobile computing, performance, platform, security, 
security processing, system architecture, wireless communications 



19 Brave newj^^ 

A service composition 

^ Klara Nahrstedt, Wolf-Tilo Balke 

October 2004 Proceedings of the 12th annual ACM international conference on Multimedia 

Publisher: ACM Press 

Full text available: ^1 1 ndf(27255 KB) Additional Information: full citation, abstract, references, index terms 



The realization of multimedia systems still heavily relies on building monolithic systems that net 
to be reengineered for every change in the application and little of which can be reused in 
subsequent developments even for similar applications. Hence, building complex large scale 
multimedia systems is still a difficult and challenging problem. Service-based architectures, like 
researched in the Web community, form a possible solution to this problem: The service-based 
paradigm decomposes co ... 

Keywords: multimedia service composition, service-oriented architectures 



20 Columns: Surfing the net for software engineering notes 
Mark Doernhoefer 

July 2001 ACM SIGSOFT Software Engineering Notes, volume 26 issue 4 
Publisher: ACM Press 

Full text available: W\o61i2.32 MB) Additional Information: jyli citation 
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